Skip to content

myugan/awesome-cicd-security

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
 
 
 
 
 
 

Repository files navigation

Awesome CI/CD Security Awesome

List of awesome resources about CI/CD security included books, blogs, videos, tools and cases.

Table of Contents

Books

Guidelines

Blogs

General

Azure DevOps Server

GitLab

GitHub Actions

Jenkins

ArgoCD

Videos

Repositories

Tools

  • Gato - A tool that helps blue teamers and offensive security practitioners find weaknesses in GitHub organization's public and private repositories.
  • clank - Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
  • legitify - Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets.
  • poutine - A security scanner that detects misconfigurations and vulnerabilities in the build pipelines of a repository.
  • Harden-Runner - Network egress filtering and runtime security for GitHub-hosted and self-hosted runners.
  • Cimon - Runtime security solution for your CI/CD pipeline.
  • Raven - A powerful security tool designed to perform massive scans for GitHub Actions CI workflows and digest the discovered data into a Neo4j database

Playground

Cases

Your contributions are always welcome.

License

CC0

About

📚 A curated list of awesome CI CD security resources

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published